Vulnerability in Samsung Mobile Galaxy Store

CVE-2026-21001

Path traversal in Galaxy Store prior to version 4.6.03.8 allows local attacker to create file with Galaxy Store privilege.

EPSS: 0.000 (9.0th percentile) — read the EPSS interpretation.

Affected products

Samsung Mobile Galaxy Store — versions 4.6.03.8

References

security.samsungmobile.com/serviceWeb.smsb